Articles about Server

'I found a bug that let anyone read anyone's Yahoo! Mail and all I got was this $10k check'

A security researcher says he bagged $10k after discovering and reporting a serious flaw in Yahoo! Mail that could have been exploited by crooks to read victims' messages. Jouko Pynnonen says he reported the vulnerability in Yahoo! Mail via bug-bounty organizers HackerOne. "The impact of the bug is similar to the one I …
John Leyden, 09 Dec 2016

Busted Windows 8, 10 update blamed for breaking Brits' DHCP

Folks using Windows 10 and 8 on BT and Plusnet networks in the UK are being kicked offline by a mysterious software bug. Computers running the Microsoft operating systems are losing network connectivity due to what appears to be a problem with DHCP. Specifically, it seems some Windows 10 and 8 boxes can no longer reliably …
Gavin Clarke, 09 Dec 2016
Blackberry jam on toast. Photo by shutterstock

The Dread Server BlackBerry Enterprise is no more

BES, the TLA that has struck trepidation into BOFHs for a decade, is no more. The brand name has been discarded in the biggest rationalisation of the company’s product lines in the company’s history. BlackBerry's product reorganisation leaves almost no part of its enterprise portfolio untouched. Practically every product that …
Andrew Orlowski, 09 Dec 2016
The Incredible Shrinking Man

Shrinkage!? But it's sooo big! More data won't leave storage biz proud

Analysis The enterprise storage market is in a period of data growth according to IDC-forcasted zettabyte heaven, right? Er, no, because it's it entered a recessionary period, with negative growth. Says IDC. Total factory revenue of $8.8bn was reported for the quarter, down 3.2 per cent down on the year while the number of …
Chris Mellor, 09 Dec 2016
EMC Cork's DSSD D5 unit

DSSD President quits Dell EMC

The Register's storage desk has learned that DSSD President Bill Moore has left Dell EMC. EMC acquired DSSD in 2014, when the prey company had revealed its intentions to build rack-scale flash storage rigs, but was still in stealth mode. Moore co-founded the company, along with Jeff Bonwick who remains a VP and CTO at Dell …
Chris Mellor, 09 Dec 2016
Huawei_600GB_SSD_inverted_colours

Huawei says its NVMe arrays with NVMe drives will be out in 2017

Interview Huawei is a believer in the use of NVMe drives and fabric. Yet it thinks that shared array controller software and hardware will need upgrading to take full advantage of NVMe drives. It does not believe customers are ready to adopt NVMe over fabric-accessed arrays because of problem areas such as routability for ROCE. We asked …
Chris Mellor, 08 Dec 2016
Image by hobbit http://www.shutterstock.com/gallery-1008401p1.html

Can ISPs step up and solve the DDoS problem?

Solve the DDoS problem? No problem. We’ll just get ISPs to rewrite the internet. In this interview Ian Levy, technical director of GCHQ’s National Cyber Security Centre, says it’s up to ISPs to rewrite internet standards and stamp out DDoS attacks coming from the UK. In particular, they should change the Border Gateway Protocol …

Stealing, scamming, bluffing: El Reg rides along with pen-testing 'red team hackers'

Feature "Go to this McDonald's," Chris Gatford told me. "There's a 'Create Your Taste' burger-builder PC there and you should be able to access the OS. Find that machine, open the command prompt and pretend to do something important. "I'll be watching you." Gatford instructed your reporter to visit the burger barn because he …
Darren Pauli, 08 Dec 2016
Xen project logo

Xen 4.8 debuts, gives ARM servers vendors a reason to hope

A new version of the Xen Project's hypervisor has emerged blinking into the light. The Project reckons the best bit of version 4.8 is support for live patching of ARMv8-A CPUs, noting that such silicon is likely to appear in servers. And server users, of course, love anything that avoids operational disruptions. So Xen has …
Simon Sharwood, 08 Dec 2016

Sigh... 'Hundreds of thousands' of... sigh, web CCTV cams still at risk of... sigh, hijacking

Vid Amid ongoing malware infections of IoT gadgets and armies of commandeered gizmos attacking server, glaring security holes in web-connected CCTV cameras are going unpatched. So say researchers with Cybereason, who claim a pair of high-profile vulnerabilities they spotted in surveillance cams two years ago have been completely …
Shaun Nichols, 07 Dec 2016

Crims turn to phishing-as-a-service to slash costs and max profits

Prefab phishing campaigns cost less to run and are twice as profitable as traditional phishing attacks, according to a new study by security vendor Imperva. Cybercriminals are lowering the cost and increasing the effectiveness of email phishing by buying complete packages of compromised servers and all the other components …
John Leyden, 07 Dec 2016

What can we use to hit Intel between the eyes, thinks Qualcomm – a 10nm ARM server chip

Qualcomm says it has started shipping to customers samples of the Centriq 2400, its 10nm 64-bit ARMv8-A general-purpose server-grade system-on-chip. The mobile chip designer, based in San Diego, California, has recruited engineers from AMD, Intel and Broadcom, as well as tapped its internal pool of techies, to work on the …
Chris Williams, 07 Dec 2016

Brocade ships switches but makes most noise about DevOps

There's a few shiny boxes in the announcement, but Broadcom-bound Brocade hopes punters will find its automation software and DevOps story even more sparkly than its new kit. Alongside three additions to its SLX switch line – the 9140, 9240, and 9540 – the company's announced an automation suite called the Brocade Workflow …

Open source Roundcube webmail can be attacked ... by sending it an e-mail

The developers of open source webmail package Roundcube want sysadmins to push in a patch, because a bug in versions prior to 1.2.3 let an attacker crash it remotely – by sending what looks like valid e-mail data. The authors overlooked sanitising the fifth argument (the _from parameter) in mail() – and that meant someone only …

Broadcom quietly dismantles its 'Vulcan' ARM server chip project

Broadcom is shutting down efforts to develop its own server-class 64-bit ARM system-on-chip, multiple sources within the semiconductor industry have told The Register. It appears the secretive project, codenamed Vulcan, did not survive Broadcom's acquisition by Avago and is gradually being wound down. Engineering resources …
Chris Williams, 07 Dec 2016
huawei store in shanghai , china   http://www.shutterstock.com/gallery-511162p1.html?cr=00&pl=edit-00 by J. Lekavicius /Shutterstock - EDITORIAL USE ONLY

SimpliVity does meet-in-the-channel type deal with Huawei

Hyper-converged infrastructure appliance and software supplier SimpliVity has certified Huawei hardware for its OmniStack software. OmniStack with Huawei FusionServer is an all-flash implementation of OmniStack. Qiu Long, President of Huawei IT Server Product Line, provided a ready-made quote: "Huawei servers running …
Chris Mellor, 06 Dec 2016
World's tallest data center

The future of the data centre is within

Promo Future-proofing your data centre is no longer down to a choice of the right servers and storage, it’s now all about connectivity, location and the neighbours. The advantage – and the problem – with technology is that it’s always improving. Your latest server will always be replaced by a newer, faster model, and the next …
Marcus Austin, 06 Dec 2016

Sony kills off secret backdoor in 80 internet-connected CCTV models

Sony has killed off what, charitably, looks like a debug backdoor in 80 of its web-connected surveillance cameras that can be exploited to hijack the devices. The hardcoded logins can be potentially used by malware, such as variants of the Mirai bot and its ilk, to automatically and silently commandeer swathes of Sony-built …
Chris Williams, 06 Dec 2016
NASA_Ames_hyperwall_950

NASA's hyperwall wonderwall uses virtual flash SAN

Case study How do get fast parallel data access to 128 compute nodes doing simulation processing off a slow, although massively parallel access data set? You could employ flash cache burst buffering, as DDN might propose, or try out an NVMe flash drive-based virtual SAN, which is what NASA Ames did in a visualisation situation. NASA's …
Chris Mellor, 06 Dec 2016

In the three years since IETF said pervasive monitoring is an attack, what's changed?

Feature After three years of work on making the Internet more secure, the Internet Engineering Task Force (IETF) still faces bottlenecks: ordinary peoples' perception of risk, sysadmins worried about how to manage encrypted networks, and – more even than state snooping – an advertising-heavy 'net business model that relies on collecting …

Hollow, world! Netflix premieres Java in-memory database toolkit

Just as the National Security Agency in 2005 came to the conclusion that it would be easier to store everything, Netflix has decided to store all of its content metadata with its customers rather than serving data from a central repository and caching frequently accessed data at the network edge. The streaming media service on …
Thomas Claburn, 05 Dec 2016
shutterstock_gold

Datrium: $55m burning hole in its pocket and raring to go global

Datrium has gained $55m C-round funding to grow its business to global scale. The startup was founded in 2012 by Data Domain and VMware vets. Its DVX product is a 2-tier design, revealed in January this year, and involving controller and data services software running in from one to 32 accessing servers, each with at least …
Chris Mellor, 05 Dec 2016
EU egg timer, photo via Shutterstock

In EU, Veritas: Post-Symantec firm flogs data protection 'safety' to biz

Veritas has announced a major release of NetBackup, v8.0, and says it's ready to help businesses respond to the 2017 EU General Data Protection Regulations. The firm has been spun out of Symantec, energised under new ownership and management to develop and sell its products into today's heterogeneous and hybrid on-premises/ …
Chris Mellor, 05 Dec 2016

HPE launches two-pronged attack on hyper-converged market

Analysis HP has two hyper-converged systems for two different but overlapping markets – SMB, ROBO, and LOB at the low end, and LOB/data centre at the high end. Both the HC 250 and HC 380 are based on ProLiant server hardware and have different software environments layered on the common Store Virtual SAN. Their branding seems the …
Chris Mellor, 05 Dec 2016

Why your gigabit broadband lags like hell – blame Intel's chipset

Intel's Puma 6 chipset, used in gigabit broadband modems around the world, suffers from latency jitter so bad it ruins online gaming and other real-time connections. The semiconductor giant is preparing a firmware update to correct spikes of lag and bouts of packet loss that repeatedly flare up in home internet hubs in America …
Chris Williams, 03 Dec 2016

Amazon tries again with AppStream because customers didn't like it

Acknowledging that the initial version of application streaming service AppStream failed to appeal to customers, Amazon Web Services is ready to try again. Introduced in 2013, AppStream offered companies a way to stream Windows desktop apps to users via browser across a variety of devices. It was intended as an alternative to …
Thomas Claburn, 02 Dec 2016

King's College London staggers from outage, replaces infrastructure services head

Exclusive More than a month after the catastrophic incident that brought King's College London's entire IT system down, the head of infrastructure services, Russell Frostick, is being replaced. The change was announced by the university's CIO, Nick Leake, in an internal communication seen by The Register, although it is not clear …
Poker all in

Pure Storage is betting its FlashArray farm on NVMe

+Comment At a high level, Pure believes NVMe is poised to unlock the next generation of performance and density gains, and any modern all-flash array needs to be ready to take advantage. It plans to enable NVMe with tier 1 resiliency and enterprise data services for everyone, refusing to see it as expensive, exotic, high-performance …
Chris Mellor, 02 Dec 2016
ice hockey puck

HyperGrid's ex-ice hockey player evangelist wants to slot the puck

Analysis It’s said that hockey players wear numbers because you can’t always identify the body from dental records, or that someone went to a fight and a hockey game broke out. Kelly Murphy is a hard man, a Regina, Saskatchewan-born ex-professional ice hockey player, forced by injury to follow the puck off the hockey field and into an …
Chris Mellor, 02 Dec 2016
Image by Sergey Nivens http://www.shutterstock.com/gallery-461077p1.html

Microsoft's 'Samaritan' refuses help to hackers doing Win 10 recon

Microsoft hacker Itai Grady has created a tool to help prevent blackhat scouts from stealing Windows credentials, an effort the firm hopes will make network compromises harder to achieve. The SAMRi10 PowerShell script (it's pronounced as samaritan) eliminates the easy username information hackers seek in initial reconnaissance …
Darren Pauli, 02 Dec 2016
Server, photo via Shutterstock

Server market slumps as everyone stops buying

Abacus-shuffler IDC's Worldwide Quarterly Server Tracker for the year's third quarter makes for ugly reading: the firm says just about all categories of server sales have stalled. Revenue was down 7.0 per cent, year over year, and shipments decreased 4.6 per cent. It's not all bad, there's still 2.38m machines and US$12.5 …
Simon Sharwood, 02 Dec 2016
Salvador Dali Persistence of Memory pastiche

Google turns on free public NTP servers that SMEAR TIME

Google's turned on a set of public network time protocol (NTP) servers. You'll find the servers at time.google.com – which resolves to 216.239.35.0, a rather less pretty IP address than the 8.8.8.8 and 8.8.4.4 Google uses for its public domain-name system (DNS) servers. There's also time2.google.com at 216.239.35.4, time3. at …
Simon Sharwood, 02 Dec 2016
Image: Lem http://www.shutterstock.com/gallery-310600p1.html

Shamoon malware returns to again wipe Saudi-owned computers

Thousands of computers in Saudi Arabia's civil aviation agency and other Gulf State organisations have been wiped by the Shamoon malware after it resurfaced some four years after wiping thousands of Saudi Aramco workstations. Security firms FireEye, CrowdStrike, McAfee, PaloAlto, and Symantec reported on the advanced sabotage …
Darren Pauli, 02 Dec 2016
botnet

Online criminals iced as cops bury malware-spewing Avalanche

On November 30, simultaneous raids in five countries by the FBI, Europol, and the UK's National Crime Agency (NCA) finally shuttered the Avalanche criminal network that has been spewing malware and money laundering campaigns for the past seven years. The Avalanche network was a system of 600 servers around the world that were …
Iain Thomson, 01 Dec 2016

Amazonian Athena gifts the AWS team with the wisdom of SaaS on PaaS

Athena, goddess of wisdom, has bestowed her name upon Amazon's new interactive query service for S3 as the company seeks to become more than a mere infrastructure vendor. Announced at re:Invent, Athena is a serverless service using distributed query engine Presto with standard ANSI SQL support to allow customers to analyse …

RAF Club members emailed fake invoices. Has it been hacked?

The Royal Air Force Club appears to have been the victim of a hack, following members being sent fake invoices for staying at the club's London HQ. A source contacted The Register with a copy of the fake invoice, which was for £200 and spoofed to appear as if it had come from the club itself. An emailed update sent to RAF …
Gareth Corfield, 01 Dec 2016
big dog little dog, image Shutterstock

NVMe too brigade update: DDN sees limited appeal in NVMe fabrics

Interview How does HPC array vendor DataDirect Networks view NVMe drives and NVMe over Fabrics? We are running a series of interviews with vendors as NVMeF is looking increasingly likely to be the future way to access Fibre Channel SAN storage, replacing the current Fibre Channel implementations, either the hardware or the HBA software …
Chris Mellor, 01 Dec 2016
shutterstock_gold

Post-IPO Pure doing all right, says NVMe is the new flash

Pure Storage all-flash arrays continue to rise, with revenues up 50 per cent year-on-year in Pure's third fiscal 2017 quarter. Pure beat Wall Street estimates, and says it has achieved a near $800m run rate. It must be hoping for similar growth in its current quarter and, by its own reckoning, it could be a billion dollar a …
Chris Mellor, 01 Dec 2016

Lenovo: If you value your server, block Microsoft's November security update

Lenovo server admins should disable Windows Update and apply a UEFI fix to avoid Microsoft’s November security patches freezing their systems. The world’s third-largest server-maker advised the step after revealing that 19 configurations of its x M5 and M6 rack, as well as its x6 systems are susceptible. Lenovo’s machines are …
Gavin Clarke, 01 Dec 2016

UCam247 tells El Reg most of its cams aren't vulnerable to GET vuln

IoT security camera vendor UCam247 has contacted The Register to say most devices in the wild aren't vulnerable to the “single URL pwnage” vulnerability. Yesterday, we reported that more than 30 cameras from seven vendors had shipped with a modified GoAhead Web server. Among other things, the modification introduced a simple- …
Amazon Web Services

Custom silicon, 9PB storage boxes, and 25Gb Ethernet – just another day in AWS hardware

AWS re:Invent AWS says it has moved into building its own silicon to help deliver the throughput for its massive cloud service. The profitable side of the Amazon empire says it has started using a custom-designed Annapurna ASIC chip to help control the networking activity – both physical and SDN – in its AWS servers. This is freeing up the …
Shaun Nichols, 30 Nov 2016

What you need to know from re:Invent – FPGAs-as-a-service and more

AWS re:Invent At its re:Invent conference in Las Vegas today, Amazon Web Services tipped its hand to reveal its battle plan for invading new markets. The Jeff Bezos cash machine has kicked out a laundry list of new services and virtual machine instances for AI applications, databases, and software that requires specialized hardware …
Shaun Nichols, 30 Nov 2016

Cheap virtual box hosters – Amazon's Lightsail is out to destroy you (yes, you, Digital Ocean)

AWS re:Invent Now that it dominates the public cloud market, Amazon is setting its sights lower – on developers deploying small projects – in the hope that these customers will remain within the AWS ecosystem. In conjunction with AWS re:Invent in Las Vegas on Wednesday, Amazon introduced Lightsail, a service that allows customers to launch …
Thomas Claburn, 30 Nov 2016
Ash loses his head in a still of the movie Alien. Copyright: 20th Century Fox

Qumulo gets head transplant

Qumulo CEO and co-founder Peter Godman is transitioning to a CTO role as Bill Richter is hired to be the new CEO and Presidenp. Godman, recent CTO Aaron Passey and VP Engineering Neil Fachan, all ex-Isilon execs, founded scale-out file startup Qumulo in 2012. Richter is another ex-Isilon exec. He left his president role at EMC …
Chris Mellor, 30 Nov 2016

It's sooo much more than a data warehouse! Microsoft beams over new appliance update

Microsoft has made its latest appliance update generally available, reminding users that PolyBase exists and that SQL Server isn't just a boring old data warehouse. Redmond's Analytics Platform System (APS) is a scale-orientated, parallel-processing, fully integrated platform for data warehouse workloads, and is now generally …

Gartner: It's tough out there for server-sellers

Gartner's number-crunchers say the server market declined in the third quarter, with only Cisco and the Others supplier category showing revenue growth. Worldwide server revenue slumped 5.8 per cent from a year ago with shipments sliding 2.6 per cent. In the x86 category, there was a 1.6 per cent decline in revenue and 2.3 per …
Chris Mellor, 30 Nov 2016

Well, FC-NVMe. Did this lightning-fast protocol just get faster?

+Comment A walk through the vast and spacious exhibition arena at HPE Discover in London can bring you to Cavium's stand. There Roberto Angelo Polacsek, a senior account exec, will tell you why he believes NVMe over Fibre Channel will be important. Cavium bought Fibre Channel HBA vendor QLogic recently, and Polacsek says its 16Gbps HBAs …
Chris Mellor, 30 Nov 2016
Bank vault

'Tesco Bank's major vulnerability is its ownership by Tesco,' claims ex-employee

A former techie at the UK's Tesco Bank reckons the recent high-profile breach may be down to security shortcomings at the bank's parent supermarket. Earlier this month Tesco Bank admitted that an estimated £2.5m had been stolen from 9,000 customer accounts in the biggest cyber-heist of its kind to affect a UK bank. The …
John Leyden, 30 Nov 2016

PayPal proffers patch for OAuth app hack hole

Paypal has patched a phishing vulnerability that could allow attackers to steal any OAuth token for its payment apps and gain access to accounts. Adobe software engineer and OAuth wonk Antonio Sanso discovered the token request flaw after messing with redirect URLs. He found PayPal's authorisation server setup to handle OAuth …
Team Register, 30 Nov 2016

GET pwned: Web CCTV cams can be hijacked by single HTTP request

An insecure web server embedded in more than 35 models of internet-connected CCTV cameras leaves devices wide open to hijacking, it is claimed. The gadgets can be commandeered from the other side of the world with a single HTTP GET request before any password authentication checks take place, we're told. If your camera is one …